I’d like that to be “new”, but… It’s not exactly the first time this exact thing happened in tech.
vk6flab@lemmy.radio 3 weeks ago
From the article:
helped in no small part by AMD reusing a publicly-accessible NIST example key as its security key
That’s a whole new level of … something.
sanpo@sopuli.xyz 3 weeks ago
vk6flab@lemmy.radio 3 weeks ago
I spent quite some time trying to find a better way to put it, but stupid, idiot, ignorance, incredulity just didn’t seem to cover the experience of WTAF?
jmcs@discuss.tchncs.de 3 weeks ago
90% of security vulnerabilities are caused by “let’s just use/do this for now and change it before production”.
vk6flab@lemmy.radio 3 weeks ago
What does the fix look like?
Code scanners? Hackathons? Code review by new hires? Education? Methodology?
jmcs@discuss.tchncs.de 3 weeks ago
All of the above and more? There’s always the risk of something falling through the cracks, so the more layers of security measures you add/can afford the better.